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Amendments to the Claims: 

This listing of claims replaces all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1. (Previously Presented) A system for enhancing security of end user station 
access to an Internet and intranet over access network with an access point, 
comprising: 

a gateway packet data node; 
a packet data support node; 

wherein said gateway packet data node further comprises security indication 
providing means for providing an security indicated access point with a security 
criterium indication and for distributing said security criterium indication to said packet 
data support node; 

wherein said packet data support node further comprises a security enforcement 
mechanism, for preventing all other traffic not fulfilling the security criterium indication 
associated with said security indicated access point when there is a connection 
requiring security over the security indicated access point, at least until the last packet 
of the security indicated access point connection has been sent. 

2. (Previously Presented) A system according to claim 1 wherein that the 
security criterium indication comprises a security marking indicating that the access 
point supports the provision of secure access point connections. 

3. (Previously Presented) A system according to claim 1 , wherein the security 
criterium indication comprises an indication as to the criterium that is to be fulfilled for 
concurrent conflicting access point connections in order for them to be allowed 
simultaneously with a first secure access point connection. 

4. (Previously Presented) A system according to claim 2, wherein that the 
security criterium indication comprises a flag, an attribute or a data structure. 
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5. (Cancelled) 

6. (Previously Presented) A system according to claim 1, wherein that the 
gateway packet data node comprises a Gateway GPRS Support Node (GGSN). 

7. (Previously Presented) A system according to, claim 1 wherein that the 
security indicating and distributing means are provided in a Home Location Register 
(HLR). 

8. (Previously Presented) A system according to claim 1, wherein that the 
security indicating and distributing means are provided in a Domain Name Server 
(DNS). 

9. (Previously Presented) A system according to claim 1, wherein that the 
security indicating means are provided in a CGSN comprising the functionality of a 
GGSN and SGSN. 

10. (Previously Presented) A system according to claim 1, wherein that an 
access point is security indicated through providing an Access Point Name thereof with 
the security indication, e.g. an attribute. 

11. (Previously Presented) A system according to claim 1, wherein that access 
point connections comprise Packet Data Protocol (PDP) contexts. 

12. (Previously Presented) A system according to claim 11, wherein the 
enforcement mechanism is dynamic, and in that in the packet data support node 
means are provided for dropping all traffic packets of other PDP contexts not meeting 
the security criterium when a simultaneous PDP context to a security marked access 
point is used for communication of packets. 
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13. (Previously Presented) A system according to claim 12, wherein that the 
packet data node comprises means for detecting traffic on a PDP context to a security 
indicated access point, and means for activating security protection and in that it further 
comprises means for, after lapse of a predetermined, configurable time period after 
sending of the last packet on a PDP context with a security indication, allowing traffic on 
other PDP contexts again. 

14. (Previously Presented) A system according to claim 1, wherein that the 
enforcement mechanism is static and in that means are provided in a packet data 
support node for deactivating access point connections which do not meet the security 
criterium when a security condition is met for one connection to a security indicated 
access point. 

15. (Previously Presented) A system according to claim 14, wherein that a 
security condition is met when a request is received in the packet data support node 
relating to activation of a PDP context to a security indicated APN. 

16. (Previously Presented) A system according to claim 14, wherein that a 
security condition is met when a PDP context to a security marked APN has been 
activated in the packet data support node. 

17. (Previously Presented) A system according to claim 14, wherein that a 
security condition is met when traffic packet is detected on a PDP context to a security 
indicated access point. 

18. (Previously Presented) A system according to claim 16, wherein that the 
packet data support node comprises means for re-activation of deactivated PDP 
contexts, and in that said means are end user controlled. 

19. (Withdrawn) A packet data support node for enhancing security at end user 
station access to Internet and intranet, said packet data support node communicating 
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with a gateway packet data node including security indication providing and distributing 
means, comprising: 

a security enforcement mechanism comprising means for receiving and detecting 
an access point security indication from said security indication providing and 
distributing means within said gateway packet data node, 

traffic preventing means for preventing all other traffic not fulfilling a security 
criterium conflicting with a security indicated access point connection at least until the 
last packet of the security indicated access point connection has been sent. 

20. (Withdrawn) A packet data support node according to claim 19, wherein that 
security indication comprises a number of criteria to be fulfilled by concurrent access 
point connections in order for them to be allowed simultaneously with other secure 
access point connections. 

21. (Withdrawn) A packet data support node according to claim 19 wherein that the 
security indication comprises an Access Point Name (APN) indication. 

22. (Withdrawn) A packet data support node according to claim 21 , that it comprises 
an SGSN. 

23. (Withdrawn) A packet data support node according to claim 21, wherein that it 
comprises a CGSN. 

24. (Withdrawn) A packet data support node according to claim 22 wherein that the 
access point connections comprise PDP contexts. 

25. (Withdrawn) A packet data support node according to claim 24, wherein that the 
enforcement mechanism is dynamic, providing for dropping of all traffical packets of all 
PDP contexts not meeting the security criterium, but keeping the PDP contexts. 
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26. (Withdrawn) A packet data support node according to claim 25, wherein that it 
comprises 

means for detecting traffic on a PDP context to a security indicated access point, 

and 

means for activating security protection and in that it further comprises 

means for, after lapse of a predetermined, configurable time period after 
sending of the last packet on a PDP context to a security indicated access point, 
allowing traffic on other PDP contexts. 

27. (Withdrawn) A packet data support node according to claim 24, wherein that the 
enforcement mechanism is static and in that the packet data support node comprises 
means for deactivating access point connections, which do not meet the security 
criterium when security protection is required for an access point connection (PDP 
context). 

28. (Withdrawn) A packet data support node according to claim 24, wherein that a 
security condition is met when a request is received relating to activation of a PDP 
context to a security indicated APN. 

29. (Withdrawn) A packet data support node according to claim 24, wherein that a 
security condition is met when a PDP context to a security marked APN is activated. 

30. (Withdrawn) A packet data support node according to claim 29, wherein that the 
packet data support node comprises means for re-activation of deactivated PDP 
contexts, and in that said means are end user controlled. 

31. (Withdrawn) A node in a mobile communication system supporting 
communication of packet data and wherein said communication system including a 
packet data support node, comprising: 

security indicating means for providing access points with a security indication to 
allow for secure remote access connections to corporate networks, wherein the security 
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indicating means further provides a distribution functionality such that a security 
indication can be distributed to a packet data support node, that said security indicating 
means support provisioning of an access point with a security criterium indication 
indicating which access point connections are allowed simultaneously over the access 
point. 

32. (Withdrawn) A node according to claim 31, wherein that the security indication is 
provided to an Access Point Name of the access point. 

33. (Withdrawn) A node according to claim 32, wherein that an access point 
connection comprises a PDP context and in that the security criterium indication 
comprises an indication of which criteria that have to be fulfilled by concurrent access 
point connections in order to be allowed when an access point is security indicated. 

34. (Withdrawn) A node according to claim 31, wherein that it comprises a Gateway 
GPRS Support Node (GGSN). 

35. (Withdrawn) A node according to claim 31, wherein that it comprises a Domain 
Name Server (DNS). 

36. (Withdrawn) A node according to claim 35, wherein that the Domain Name 
Server comprises an extended functionality for storing IP addresses and security 
indications, the DNS server comprising dedicated or specific records for or comprising 
security indications. 

37. (Withdrawn) A node according to claim 31, wherein that it comprises a Home 
Location Register (HLR). 

38. (Previously Presented) A method for enhancing security of end user station 
access to Internet and intranet, comprising the steps of: 

establishing if an access point needs to be secure ; 
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if yes, 

providing the access point with a security indication with one or more 
criteria in a network node, 

distributing the security indication to a packet data support node, 
enforcing the security indication by at least preventing all traffic on all 
access point connections conflicting a first security indicated access point 
connection through the security indicated access point and not fulfilling the 
security criteria at least until the last packet of the security indicated access point 
connection has been sent. 

39. (Previously Presented) A method according to claim 38, wherein that it 
comprises the step of: 

providing the security indication in a gateway packet data node in a home 
location register (HLR) or in a Domain Name Server (DNS). 

40. (Previously Presented) A method according to claim 38, wherein that the step 
of providing a security indication comprises, 

providing an Access Point Name (APN) with the security indication. 

41. (Previously Presented) A method according to claim 40, wherein that the 
access point connections comprise PDP contexts. 

42. (Previously Presented) A method according to claim 41 , wherein that the 
enforcing step comprises: 

dropping all traffic packets of all other PDP contexts than a first incoming security 
requiring PDP context which do not meet the security criteria. 

43. (Previously Presented) A method according to claim 41 , wherein that the 
enforcing step comprises: 

deactivating all other conflicting PDP contexts than a first security requiring PDP 
context, which do not fulfill the security criteria. 
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